| sars-document-e7d1557f798a.herokuapp.com/index.php/ | 54.243.238.66 | 200 OK | 5.1 kB |
URL User Request GET HTTP/1.1sars-document-e7d1557f798a.herokuapp.com/index.php/ IP54.243.238.66:443
CertificateIssuerAmazon Subject*.herokuapp.com Fingerprint69:15:6A:39:54:AB:6C:DE:D6:65:C8:6B:7E:4F:66:68:D2:A2:F0:F1 ValiditySat, 02 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1517) Hashf7be9c9704d81a09226472153b455930 227e5a98a9a42b2ba20ceedb069503982a0301ab 10c623792a4b5f499bf5349999b283741fa42984c44bb20d26aebee3aac18535
Analyzer | Verdict | Alert | OpenPhish | phishing | Adobe Inc. |
GET /index.php/ HTTP/1.1
Host: sars-document-e7d1557f798a.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D"}]}
Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D
Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
Connection: keep-alive
Date: Wed, 17 Apr 2024 17:37:06 GMT
Server: Apache
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Via: 1.1 vegur
|
|
| sars-document-e7d1557f798a.herokuapp.com/index.php/css/style.css | 54.243.238.66 | 200 OK | 5.1 kB |
URL GET HTTP/1.1sars-document-e7d1557f798a.herokuapp.com/index.php/css/style.css IP54.243.238.66:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerAmazon Subject*.herokuapp.com Fingerprint69:15:6A:39:54:AB:6C:DE:D6:65:C8:6B:7E:4F:66:68:D2:A2:F0:F1 ValiditySat, 02 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1517) Hashf7be9c9704d81a09226472153b455930 227e5a98a9a42b2ba20ceedb069503982a0301ab 10c623792a4b5f499bf5349999b283741fa42984c44bb20d26aebee3aac18535
GET /index.php/css/style.css HTTP/1.1
Host: sars-document-e7d1557f798a.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/index.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D"}]}
Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D
Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
Connection: keep-alive
Date: Wed, 17 Apr 2024 17:37:06 GMT
Server: Apache
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Via: 1.1 vegur
|
|
| icons.iconarchive.com/icons/martz90/hex/512/adobe-icon.png | 104.21.235.214 | 200 OK | 30 kB |
URL GET HTTP/2icons.iconarchive.com/icons/martz90/hex/512/adobe-icon.png IP104.21.235.214:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerLet's Encrypt Subjecticonarchive.com Fingerprint8B:23:86:CB:64:E6:12:B0:43:92:24:1F:EF:CD:6E:15:6D:DC:54:82 ValidityWed, 03 Apr 2024 02:30:20 GMT - Tue, 02 Jul 2024 02:30:19 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash71cb23eb99ce00a51915c9d9c4a779e7 4f492e9e898ac9fb0358d81b4a622e88b5b9ec81 16ea1a385d3d7e14a3e6037976d942dff2d99d2f7b6a2a2bafe965975b7f0089
GET /icons/martz90/hex/512/adobe-icon.png HTTP/1.1
Host: icons.iconarchive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:37:06 GMT
content-type: image/png
content-length: 29819
last-modified: Tue, 07 Feb 2023 10:15:55 GMT
etag: "63e224db-747b"
cache-control: max-age=5356800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NNwlVKv2GavJcPxERoBAvUy%2FJR%2FKD%2FYN5oSY5ifmppFk6IAI8jqmhb7DOZKNIYIzO4p0tZ4FboGH%2Fk27cckwXKZ4B3zXvbs1KQcznOuVWH8L7AGSWDwnDUUmoS8cWKpUlwpUydv%2Fr5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e2e5eee170639-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sars-document-e7d1557f798a.herokuapp.com/index.php/css/font-awesome.css | 54.243.238.66 | 200 OK | 5.1 kB |
URL GET HTTP/1.1sars-document-e7d1557f798a.herokuapp.com/index.php/css/font-awesome.css IP54.243.238.66:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerAmazon Subject*.herokuapp.com Fingerprint69:15:6A:39:54:AB:6C:DE:D6:65:C8:6B:7E:4F:66:68:D2:A2:F0:F1 ValiditySat, 02 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1517) Hash7e42c1d40c02cc1de4ddacf2f9d349e0 91726d5b1f856457c756f932d9ecc452627baea9 8415bf3ea2994245fdcb5fa5849159751add5e58a2ec7ae39ec2f1c47c12c38a
GET /index.php/css/font-awesome.css HTTP/1.1
Host: sars-document-e7d1557f798a.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/index.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D"}]}
Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D
Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
Connection: keep-alive
Date: Wed, 17 Apr 2024 17:37:06 GMT
Server: Apache
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Via: 1.1 vegur
|
|
| i.imgur.com/R9kBfPU.jpg | 151.101.244.193 | 200 OK | 21 kB |
IP151.101.244.193:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.14.14.72670860 0xea05112d", baseline, precision 8, 1600x861, components 3 Hashea64d8520e9d81795481d10b03168973 00cd414aa9376a47ec602ee0e8029342296a7f7f 7c5ce41cd98218d983aaa63671401707d6ba97b627c61a3a324c70f11ececae2
GET /R9kBfPU.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 28 Jan 2018 20:41:18 GMT
etag: "ea64d8520e9d81795481d10b03168973"
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: SOoaeHW1byCbFTs72O1x87wICgi3vpLrNZuEyc7MiitqAyXcON03vQ==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 722193
date: Wed, 17 Apr 2024 17:37:06 GMT
x-served-by: cache-iad-kiad7000051-IAD, cache-hel1410028-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 22, 0
x-timer: S1713375427.745858,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 21408
X-Firefox-Spdy: h2
|
|
| i.imgur.com/loJVAAQ.png | 151.101.244.193 | 200 OK | 182 B |
IP151.101.244.193:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash15b413426b6b811940929e1462cc3233 661ec299fe1a02f7693048c36306f030c50c846a 1df04c802992ba74bad7fc970f4f07129aca62dae1b3eb5d4f15cd3ff52c6391
GET /loJVAAQ.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 28 Jan 2018 20:42:51 GMT
etag: "15b413426b6b811940929e1462cc3233"
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: GDJikrmt2lKb2NuOkBcb9s-Z-hapyk932V_R2yYpxejFmEF-cjlnVg==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 285887
date: Wed, 17 Apr 2024 17:37:06 GMT
x-served-by: cache-iad-kiad7000052-IAD, cache-hel1410028-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 16, 0
x-timer: S1713375427.765504,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 182
X-Firefox-Spdy: h2
|
|
| ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png | 3.81.178.115 | 301 Moved Permanently | 277 B |
URL GET HTTP/2ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png IP3.81.178.115:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerLet's Encrypt Subjectancillare.com Fingerprint8E:AE:D0:80:07:B9:6C:C5:AA:F8:B1:02:91:45:40:2A:BB:EA:A5:D2 ValidityMon, 25 Mar 2024 23:08:09 GMT - Sun, 23 Jun 2024 23:08:08 GMT
File typeHTML document, ASCII text Hash3bca592537c9f540e44d5ebe92723815 900be1b6873967d662b9365f310f57f21ef0d292 42b7e158d59d88487243531e15b1ced2087273de86f356e8c2640f5e47e33e6e
GET /wp-content/uploads/2017/04/acrobat-icon.png HTTP/1.1
Host: ancillare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
strict-transport-security: max-age=63072000; includeSubDomains; preload
location: https://www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png
content-length: 277
content-type: text/html; charset=iso-8859-1
date: Wed, 17 Apr 2024 17:37:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| sars-document-e7d1557f798a.herokuapp.com/favicon.ico | 54.243.238.66 | 404 Not Found | 196 B |
URL GET HTTP/1.1sars-document-e7d1557f798a.herokuapp.com/favicon.ico IP54.243.238.66:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerAmazon Subject*.herokuapp.com Fingerprint69:15:6A:39:54:AB:6C:DE:D6:65:C8:6B:7E:4F:66:68:D2:A2:F0:F1 ValiditySat, 02 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /favicon.ico HTTP/1.1
Host: sars-document-e7d1557f798a.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/index.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D"}]}
Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713375426&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&s=G0G9kawOK8UJtCGcGs8RB7Fd%2BaMO1%2FPkjSAkReOMqKI%3D
Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
Connection: keep-alive
Date: Wed, 17 Apr 2024 17:37:06 GMT
Server: Apache
Content-Length: 196
Content-Type: text/html; charset=iso-8859-1
Via: 1.1 vegur
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash4a3c892acf52973353962f8fab44626a 3f22889f90e1b34011bb025e51706e60cc13e3a7 bf3a44344cbcf044dac22b04faa5b5dca8afa18338f77f3376594737c5a06b28
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 17:37:07 GMT
Server: ECAcc (amb/6A94)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zbhijXrUl0oPaKRp5cr5fT4vaxd76jkPZ6FiWUFOB3NFaReOo7ImRw==
|
|
| fonts.googleapis.com/css?family=Lato | 142.250.74.106 | 200 OK | 342 B |
URL GET HTTP/2fonts.googleapis.com/css?family=Lato IP142.250.74.106:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash11b8f27b7e5b7848389f4d869c11acc4 c6d90c5b580d6049ffd37ef3a990bce80db73433 77d9907ca853ab885fd7a35a29faaf4206b8fe47347cd9c12391d64451ad6f37
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 17:37:06 GMT
date: Wed, 17 Apr 2024 17:37:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash4a3c892acf52973353962f8fab44626a 3f22889f90e1b34011bb025e51706e60cc13e3a7 bf3a44344cbcf044dac22b04faa5b5dca8afa18338f77f3376594737c5a06b28
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 17:37:07 GMT
Server: ECAcc (amb/6AE7)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YJWoSaodbOMx-JSbED6yQvfEfUxs4ZHs_U_TFwzDVTuDY49Z4nhimw==
|
|
| www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png | 143.204.55.127 | 302 Found | 0 B |
URL GET HTTP/2www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png IP143.204.55.127:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerAmazon Subjectancillare.com Fingerprint9E:F7:70:B6:72:EC:D9:43:44:3E:3F:A5:03:5C:89:82:D4:BF:F2:00 ValidityFri, 08 Mar 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/04/acrobat-icon.png HTTP/1.1
Host: www.ancillare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 0
location: https://www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png/
date: Wed, 17 Apr 2024 01:51:28 GMT
server: AmazonS3
x-powered-by: Strattic
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: MG7XZ8fLWdzrEE1_KArepRDYo18F0BoBizk1ARG-annwplQZVKxjhw==
age: 56738
X-Firefox-Spdy: h2
|
|
| www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png/ | 143.204.55.127 | 404 Not Found | 0 B |
URL GET HTTP/2www.ancillare.com/wp-content/uploads/2017/04/acrobat-icon.png/ IP143.204.55.127:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerAmazon Subjectancillare.com Fingerprint9E:F7:70:B6:72:EC:D9:43:44:3E:3F:A5:03:5C:89:82:D4:BF:F2:00 ValidityFri, 08 Mar 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/04/acrobat-icon.png/ HTTP/1.1
Host: www.ancillare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Wed, 17 Apr 2024 01:51:37 GMT
cache-control: must-revalidate, max-age=0, s-maxage=86400
last-modified: Thu, 11 Apr 2024 14:19:07 GMT
x-amz-version-id: wrgJ2KDGL0XoIQYFV8vBpSL5FyqiLF9f
etag: W/"9246d6eb079772ecd594e1624a9eb062"
server: AmazonS3
x-powered-by: Strattic
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-encoding: gzip
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CLRhWHSDkz3qDlSyrd1MfVw29GNzCC1W8yMYN6l35pF_FZcCxIV1EQ==
age: 56730
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Raleway | 142.250.74.106 | 200 OK | 1.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Raleway IP142.250.74.106:443
Requested byhttps://sars-document-e7d1557f798a.herokuapp.com/index.php/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1799), with no line terminators Hasheee9e4fb6b8c4d949b482179e4435d44 367dfc68f15a6dc5c6b7340e50d916e1c2589c76 54918a6094507d1ed222b493334bb86f01c8ca545e35543670a8dce67cd55239
GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sars-document-e7d1557f798a.herokuapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 17:37:06 GMT
date: Wed, 17 Apr 2024 17:37:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|